General

  • Target

    Installer.GitHub.rar

  • Size

    27.8MB

  • MD5

    73206a3de981facc823c8b2f5d4020f5

  • SHA1

    1c77e01ed3267fba9c5e78e464a8b6bef357de9f

  • SHA256

    1135081bde2464c28692eb7704cb4b286a6045f014e7b083824b2d72dd7dc3ba

  • SHA512

    ba896440dae788d2af58c49eb102dbe3be21981904da1cb5af89b0be46fb11d290d2d5becba580fc802c0dee9b3892d3615367f83fd43a019c177a00ba5ef193

  • SSDEEP

    786432:ZqwADv5R+EfQVGqHko+ZbpcMFox8BKwIDgUYpM7:EDhHfQo2V+ZbpcUocIDgc7

Score
3/10

Malware Config

Signatures

  • Unsigned PE 25 IoCs

    Checks for missing Authenticode signature.

Files

  • Installer.GitHub.rar
    .rar

    Password: 2024

  • Installer [GitHub]/Installer.exe
    .exe windows:6 windows x86 arch:x86

    Password: 2024

    9fca7ec96f19b6e58145d3e0a9b2154f


    Headers

    Imports

    Sections

  • Installer [GitHub]/libs/xmlfilter.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    Password: 2024

    9c6c869862163d621c2d7c68bc01df4c


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/libs/xmllite.dll
    .dll windows:10 windows x64 arch:x64

    Password: 2024

    d2e0f3f026362c9bf4ba56fa26b36d50


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/libs/xmlprovi.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    Password: 2024

    24d8349f9b6586bff7025b9e2cce6bac


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/libs/xolehlp.dll
    .dll windows:10 windows x64 arch:x64

    Password: 2024

    8c66b484e9dcdd20cbcb519baff6097e


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/3 - Copy.dll
    .dll windows:10 windows x64 arch:x64

    Password: 2024

    3743d57b7a85109e8946ad01b46bbecc


    Headers

    Imports

    Sections

  • Installer [GitHub]/x64/3.dll
    .dll windows:10 windows x64 arch:x64

    Password: 2024

    3743d57b7a85109e8946ad01b46bbecc


    Headers

    Imports

    Sections

  • Installer [GitHub]/x64/BluetoothDesktopHandlers - Copy.dll
    .dll windows:10 windows x64 arch:x64

    Password: 2024

    bc6f2fb06806d537e61ddf304b9b96f6


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/BluetoothDesktopHandlers.dll
    .dll windows:10 windows x64 arch:x64

    bc6f2fb06806d537e61ddf304b9b96f6


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/WinFax.dll
    .dll windows:10 windows x64 arch:x64

    7c0bf03190cb1dd5f9c90cf0a8d6a35c


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/WinMsoIrmProtector.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    5ca8c00138c16b571ec0d96535c6b914


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/WinOpcIrmProtector.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    f44635c14c6f5e19b66e4d9cfc4086cd


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/WindowsInternal.Shell.CompUiActivation.dll
    .dll windows:10 windows x64 arch:x64

    8956979c4ae91af1addac7f1e86f5d95


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/WindowsIoTCsp.dll
    .dll windows:10 windows x64 arch:x64

    0ee969ca372a37aeaa20672d047d3549


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/WindowsManagementServiceWinRt.ProxyStub.dll
    .dll windows:10 windows x64 arch:x64

    a8ac205b0ceca6373eb1eefdb5bd93ef


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/WindowsSecurityIcon.png
    .png
  • Installer [GitHub]/x64/WindowsUpdateElevatedInstaller.exe
    .exe windows:10 windows x64 arch:x64

    464bece13e769d1ab0e5d1a6d49aad1c


    Headers

    Imports

    Sections

  • Installer [GitHub]/x64/blbres - Copy.dll
    .dll windows:10 windows x64 arch:x64


    Headers

    Sections

  • Installer [GitHub]/x64/blbres.dll
    .dll windows:10 windows x64 arch:x64


    Headers

    Sections

  • Installer [GitHub]/x64/bootux - Copy.dll
    .dll windows:10 windows x64 arch:x64

    3743d57b7a85109e8946ad01b46bbecc


    Headers

    Imports

    Sections

  • Installer [GitHub]/x64/bootux.dll
    .dll windows:10 windows x64 arch:x64

    3743d57b7a85109e8946ad01b46bbecc


    Headers

    Imports

    Sections

  • Installer [GitHub]/x64/opengl32 - Copy.dll
    .dll windows:6 windows x64 arch:x64

    953a1d49fc9a274cd623a8ac0359ac89


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/opengl32.dll
    .dll windows:6 windows x64 arch:x64

    953a1d49fc9a274cd623a8ac0359ac89


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/trading_api64 - Copy.dll
    .dll windows:5 windows x64 arch:x64

    f7d326cb8fdda36f97bcf61c5e808a67


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/trading_api64.dll
    .dll windows:5 windows x64 arch:x64

    f7d326cb8fdda36f97bcf61c5e808a67


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/tradingnetworkingsockets.dll
    .dll windows:6 windows x64 arch:x64

    e917d42bcc53c047e3b944d762080d33


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/winethc.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    3acaa8683a196ef04c6149c6b1d2b3ab


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/wininetlui.dll
    .dll windows:10 windows x64 arch:x64

    21e7fc7acd53fc5b2900471ddf863396


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/wininitext.dll
    .dll windows:10 windows x64 arch:x64

    fe0759c21b6c6aed369fe31c269210a3


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/winlogonext.dll
    .dll windows:10 windows x64 arch:x64

    e69d14c74de8e7df5587a714084a0e88


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/winml.dll
    .dll windows:10 windows x64 arch:x64

    7c6e3bebfd329d7258d243d17e0737e6


    Headers

    Imports

    Exports

    Sections

  • Installer [GitHub]/x64/winnlsres.dll
    .dll windows:10 windows x64 arch:x64


    Headers

    Sections

  • Installer [GitHub]/x64/winnsi.dll
    .dll windows:10 windows x64 arch:x64

    ad7c692fa9fcc8c643fd494188deca65


    Code Sign

    Headers

    Imports

    Exports

    Sections